Merge branch 'master' into docs-rel-4-7-a

Author: benradstone

_partials/pcg/_pcg-cluster-provisioning.mdx

@@ -0,0 +1,33 @@
+---
+partial_category: pcg
+partial_name: pcg-cluster-provisioning
+---
+
+A new PCG configuration file is generated, and its location is displayed on the console.
+
+```bash hideClipboard title="Example output"
+==== PCG config saved ====
+Location: :/home/demo/.palette/pcg/pcg-20230706150945/pcg.yaml
+```
+
+The Palette CLI begins provisioning a PCG cluster in your {props.edition} environment. Take the following steps to monitor the progress of the PCG
+deployment.
+
+    1. Log in to [Palette](https://console.spectrocloud.com) as a tenant admin.
+
+    2. From the left main menu, select **Tenant Settings**.
+
+    3. From the **Tenant Settings Menu**, below **Infrastructure**, select **Private Cloud Gateways**.
+
+    4. Select the PCG cluster being deployed. Use the **Events** tab to monitor the deployment progress of your PCG cluster.
+
+If you encounter issues during the installation, refer to our <VersionedLink text="PCG Troubleshooting" url="/troubleshooting/pcg" />
+guide. For additional assistance, reach out to our [Customer Support](https://spectrocloud.atlassian.net/servicedesk/customer/portals) team.
+
+:::warning
+
+You cannot modify a deployed PCG cluster. If you need to make changes to your PCG cluster, you must delete the existing PCG cluster
+and redeploy it with your updated configurations. For this reason, we recommend you save your PCG configuration file for future use. 
+Use the Palette CLI `--config-only` flag to save the PCG configuration file without deploying the PCG cluster. Refer to our <VersionedLink text="Generate a Configuration File" url="/automation/palette-cli/commands/pcg#generate-a-configuration-file" /> guide.
+
+:::

_partials/pcg/_pcg-initial-installation.mdx

@@ -0,0 +1,37 @@
+---
+partial_category: pcg
+partial_name: pcg-kind-cleanup
+---
+
+To avoid potential vulnerabilities, once your PCG cluster is deployed, remove the `kind` images that were installed
+in the environment where you initiated the installation.
+
+Issue the following command to list all instances of `kind` that exist in the environment.
+
+```shell
+docker images
+```
+
+```shell hideClipboard title="Example output"
+REPOSITORY     TAG        IMAGE ID       CREATED        SIZE
+kindest/node   v1.26.13   131ad18222cc   5 months ago   910MB
+```
+
+Then, use the following command template to remove all instances of `kind`. Replace `<tag>` with your `kind` image tag.
+
+```shell
+docker image rm kindest/node:<tag>
+```
+
+Consider the following example for reference.
+
+```shell hideClipboard title="Example command"
+docker image rm kindest/node:v1.26.13
+```
+
+```shell hideClipboard title="Example output"
+Untagged: kindest/node:v1.26.13
+Untagged: kindest/node@sha256:15ae92d507b7d4aec6e8920d358fc63d3b980493db191d7327541fbaaed1f789
+Deleted: sha256:131ad18222ccb05561b73e86bb09ac3cd6475bb6c36a7f14501067cba2eec785
+Deleted: sha256:85a1a4dfc468cfeca99e359b74231e47aedb007a206d0e2cae2f8290e7290cfd
+```

_partials/pcg/_pcg-kind-cleanup.mdx

@@ -0,0 +1,18 @@
+---
+partial_category: pcg
+partial_name: pcg-validate
+---
+
+Once installed, the PCG registers itself with Palette. To verify the PCG is registered, take the following steps.
+
+1. Log in to [Palette](https://console.spectrocloud.com) as a tenant admin.
+
+2. From the left main menu, select **Tenant Settings**.
+
+3. From the **Tenant Settings Menu**, below **Infrastructure**, select **Private Cloud Gateways**.
+
+4. Verify your PCG cluster is displayed and that it has a green check mark for its **Health**.
+
+5. Next, from the **Tenant Settings Menu**, below **Infrastructure**, select **Cloud Accounts**.
+
+6. Verify a new {props.edition} cloud account is displayed.

_partials/pcg/_pcg-validate.mdx

@@ -0,0 +1,18 @@
+---
+partial_category: self-hosted
+partial_name: airgap-binary-execution
+---
+
+```shell hideClipboard title="Example output" {9-10}
+Verifying archive integrity...  100%   MD5 checksums are OK. All good.
+Uncompressing Airgap Setup - Version 4.0.17  100%
+Setting up Packs
+- Pushing Pack cni-calico:3.25.1
+...
+Setting up Images
+- Pushing image docker.io/kindest/kindnetd:v20230227-15197099
+...
+Preparing Manifests Archive
+Manifests are available in /tmp/spectro-manifests-1696971110.zip.
+Setup Completed
+```

_partials/self-hosted/upgrade/_airgap-binary-execution.mdx

@@ -49,19 +49,41 @@ also shared with the workload cluster during the cluster deployment.
 
 ### Network Proxy
 
-The PCG supports using a proxy server to access the internet if needed. If you are installing the PCG through the
-Palette CLI, you can provide the proxy server details, including any required Certificate Authority certificates, during
-installation. The PCG will use the provided proxy server to access the internet. The PCG will also provide the proxy
-server details to the deployed workload clusters.
-
-A PCG installed onto an existing Kubernetes cluster will inherit the proxy server configuration from the underlying
-Kubernetes cluster. Contact your Kubernetes administrator for the proxy server details and guidance on configuring the
-underlying Kubernetes cluster to use a proxy server if needed.
+The PCG supports using a proxy server to access the internet if needed.
 
 We encourage you to review the [gRPC and Proxies](../../architecture/grps-proxy.md) reference page to better prepare for
 using a proxy server with the PCG. Depending on your network proxy configuration and software, you may need to make
 updates to ensure compatibility with Palette.
 
+#### Palette CLI
+
+If you are installing the PCG through the Palette CLI, you can provide the proxy server details during installation. The
+proxy server details are saved as environment variables (`HTTPS_PROXY`, `HTTP_PROXY`, and `NO_PROXY`) and are propagated
+to all PCG cluster nodes, as well as the nodes of all tenant workload clusters deployed with the PCG. The provided proxy
+servers are then used by the PCG and workload clusters to access the internet.
+
+You can also provide Certificate Authority (CA) certificates for the proxy server during installation. However, proxy CA
+certificates are only propagated to each PCG cluster node; they are not propagated to the nodes of tenant clusters.
+
+Proxy CA certificates must be added to workload clusters at either the tenant level or the cluster profile level in the
+OS layer.
+
+- If configured at the tenant level, _all_ workload clusters provisioned from the tenant, with the exception of managed
+  Kubernetes clusters (EKS, AKS, and GKE) and Edge clusters, will have the CA certificate injected into their cluster
+  nodes.
+
+- If configured at the cluster profile level, only workload clusters deployed using the cluster profile will be injected
+  with the CA certificate.
+
+For guidance on configuring proxy CA certificates, refer to appropriate Palette CLI PCG deployment guide for
+[MAAS](./deploy-pcg/maas.md), [OpenStack](./deploy-pcg/openstack.md), or [VMware vSphere](./deploy-pcg/vmware.md).
+
+#### Existing Kubernetes Cluster
+
+A PCG installed onto an existing Kubernetes cluster will inherit the proxy server configuration from the underlying
+Kubernetes cluster. Contact your Kubernetes administrator for the proxy server details and guidance on configuring the
+underlying Kubernetes cluster to use a proxy server if needed.
+
 ## Cluster Lifecycle Support
 
 The PCG supports the lifecycle of Kubernetes clusters deployed in your private cloud environments. When you initiate a